Lucene search
Veracode Vulnerability DatabaseVERACODE:39128HistoryFeb 03, 2023 - 11:02 p.m.
Out-of-bounds Write
2023-02-0323:02:24
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
35
out-of-bounds write
kernel debugger
uefi secure boot
serial port
read access
write access
EPSS
0
Percentile
15.6%
kernel is vulnerable to Out-of-bounds Write. The vulnerability exists because the kernel debugger could be used to bypass UEFI Secure Boot restrictions. An attacker with access to a serial port could trigger the debugger and allow read and write access.
References
access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.7_release_notes/index
access.redhat.com/errata/RHSA-2022:7444
access.redhat.com/security/updates/classification/#moderate
access.redhat.com/solutions/6971358
bugzilla.redhat.com/show_bug.cgi?id=2084183
git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=eadb2f47a3ced5c64b23b90fd2a3463f63726066
Related
prion
prion
Design/Logic Flaw
2022-06-09 21:15:00
oraclelinux
oraclelinux
Unbreakable Enterprise kernel security update
2022-05-24 00:00:00
Unbreakable Enterprise kernel security update
2022-05-24 00:00:00
kernel security update
2022-06-17 00:00:00
redhatcve
redhatcve
CVE-2022-21499
2022-06-14 11:29:24
ubuntucve
ubuntucve
CVE-2022-21499
2022-05-24 00:00:00
nessus
nessus
Oracle Linux 7 : Unbreakable Enterprise kernel-container (ELSA-2022-9427)
2022-05-24 00:00:00
Photon OS 4.0: Linux PHSA-2022-4.0-0189
2024-07-23 00:00:00
Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2022-9422)
2022-05-24 00:00:00
nvd
nvd
CVE-2022-21499
2022-06-09 21:15:07
cvelist
cvelist
CVE-2022-21499
2022-06-09 20:15:28
debiancve
debiancve
CVE-2022-21499
2022-06-09 21:15:07
cve
cve
CVE-2022-21499
2022-06-09 21:15:07
vulnrichment
vulnrichment
CVE-2022-21499
2022-06-09 20:15:28
openvas
openvas
Mageia: Security Advisory (MGASA-2022-0213)
2022-05-30 00:00:00
Mageia: Security Advisory (MGASA-2022-0212)
2022-05-30 00:00:00
Ubuntu: Security Advisory (USN-5465-1)
2022-08-26 00:00:00
mageia
mageia
Updated kernel-linus packages fix security vulnerabilities
2022-05-28 11:56:13
Updated kernel packages fix security vulnerabilities
2022-05-28 11:56:13
ubuntu
ubuntu
Linux kernel vulnerabilities
2022-06-08 00:00:00
Linux kernel (OEM) vulnerabilities
2022-06-08 00:00:00
Linux kernel vulnerabilities
2022-06-16 00:00:00
osv
osv
linux, linux-aws, linux-kvm, linux-lts-xenial vulnerabilities
2022-06-08 01:25:26
linux-oem-5.14 vulnerabilities
2022-06-08 05:01:06
linux vulnerabilities
2022-06-16 23:56:26
photon
photon
Critical Photon OS Security Update - PHSA-2022-0189
2022-05-27 00:00:00
Important Photon OS Security Update - PHSA-2022-4.0-0189
2022-05-27 00:00:00
debian
debian
[SECURITY] [DSA 5161-1] linux security update
2022-06-11 09:15:06
rocky
rocky
kernel-rt security and bug fix update
2022-11-08 06:19:55
kernel security, bug fix, and enhancement update
2022-11-08 06:26:19
almalinux
almalinux
Moderate: kernel-rt security and bug fix update
2022-11-08 00:00:00
Moderate: kernel security, bug fix, and enhancement update
2022-11-08 00:00:00
Moderate: kernel-rt security and bug fix update
2022-11-15 00:00:00
suse
suse
Security update for the Linux Kernel (important)
2022-06-17 00:00:00
Security update for the Linux Kernel (important)
2022-08-01 00:00:00
Security update for the Linux Kernel (important)
2022-07-22 00:00:00
redhat
redhat
(RHSA-2022:7444) Moderate: kernel-rt security and bug fix update
2022-11-08 06:19:55
(RHSA-2022:7683) Moderate: kernel security, bug fix, and enhancement update
2022-11-08 06:26:19
(RHSA-2022:8267) Moderate: kernel security, bug fix, and enhancement update
2022-11-15 06:19:55
redos
redos
ROS-20221220-01
2022-12-20 00:00:00
slackware
slackware
[slackware-security] Slackware 15.0 kernel
2022-08-26 04:17:47
oracle
oracle
Oracle Critical Patch Update Advisory - January 2023
2023-01-17 00:00:00